Today we're[+Mark Ermolov and Dmitry Sklyarov]disclosing the technique allowing to modify #Intel #Microcode on the fly! For the first time you have the ability to intercept control flow at such a low level. We've developed the microcode patch that changes the processor model string as PoC

📢 ICYMI, we launched a new course: EXP-301! In Windows User Mode Exploit Development, you’ll learn how to create custom exploits, bypass security mitigations, and reverse-engineer bugs. Get your questions answered in our FAQs: offs.ec/3tbz1EC

WINDOWS KERNEL ZERO-DAY EXPLOIT (CVE-2021-1732) IS USED BY BITTER APT IN TARGETED ATTACK ti.dbappsecurity.com.cn/blog/index.php…

🔥New article: "Swarm of Palo Alto PAN-OS vulnerabilities". Two RCEs and other bugs found by our researchers Mikhail Klyuchnikov & Nikita Abramov. swarm.ptsecurity.com/swarm-of-palo-… Full analysis 👆

Imhex : A Hex Editor for Reverse Engineers, Programmers and people that value their eye sight when working at 3 AM : github.com/WerWolv/ImHex credits WerWolv

Volexity has identified multiple 0-day exploits in Microsoft Exchange resulting in authentication bypass and RCE. Actively exploited in the wild since at least January 2021. More here: volexity.com/blog/2021/03/0… #threatintel #dfir #infosec

VMware fixed an Unauth RCE in View Planner (CVE-2021-21978) found by our researcher Mikhail Klyuchnikov. Advisory: vmware.com/security/advis…

We published GHIDRA plugin for NodeJS Bytenode (JSC) binaries github.com/PositiveTechno… #ghidra #v8 #nodejs #reverse

🚀Join our new telegram channel! It's where we share lots of articles, vulnerabilities, and scripts, not necessarily authored by us, that we find interesting. More stuff coming soon! 👉 t.me/ptswarm

New article "How we bypassed bytenode and decompiled Node.js (V8) bytecode in Ghidra" by our researcher Sergey Fedonin. swarm.ptsecurity.com/how-we-bypasse…

If you are interested in Ghidra plugins, this is how you can significantly improve decompiler output by dynamically injecting P-Code. This is what I used in our Ghidra Node.JS plugin github.com/PositiveTechno…. At the time of writing this mechanism was poorly documented. #Ghidra

SonicWall fixed a Post-Auth RCE (CVE-2021-20026) in Network Security Manager and an Unauth Buffer Overflow (CVE-2021-20027) in SonicOS found by our researcher Nikita Abramov. Advisory: psirt.global.sonicwall.com/vuln-detail/SN…

I've published the article covering my talk at ZeroNights! Improving the exploit for CVE-2021-26708 in the Linux kernel to bypass LKRG a13xp0p0v.github.io/2021/08/25/lkr… Slides: a13xp0p0v.github.io/img/CVE-2021-2… PoC exploit demo video: youtube.com/watch?v=O6rsuG… Enjoy!

💳PAX Technology fixed three vulnerabilities discovered by our researcher Artem Ivachev. 💰When chained together these vulnerabilities allow the interception of user card data and the sending of arbitrary data to the processing of the acquiring bank.

The new tool for finding Reflected XSS github.com/elkokc/reflect… by Alexandr Shvetsov Egor Dimitrenko #bugbounty #security #xss #BHEU

Come to our booth ZeroNights and get your free T-shirt and learn how to make money from vulnerability disclosure!